Good morning niftynei, waxwing, and list, > > Probably so that address reuse is not dinged, i.e. I have two UTXOs with > > the same address and want to make two different channels with different > > peers. > > Having 2 utxos locked to the same pubkey will map to a single H2 value > though, which is what is used to flag utxo reuse. With a PoDLE you're proving > that you have a key for a utxo; the verifier checks that the key you say you > know does in fact map to controlling the utxo that you say it's attached to. > Whether or not you added the utxo to the signature commitment doesn't add > anything to the security of the verification. > > At worse, it might leak what other utxo that the initiator controls, if they > accidentally commit to the wrong utxo and the peer decided to try grinding > utxo outpoints on the offchance that one matched.
Right, right, H2 commits to knowledge of the privkey, not a specific UTXO. I suppose the Right Thing to do if somebody foists address reuse on you would be to spend all UTXOs with the same address together. Regards, ZmnSCPxj _______________________________________________ Lightning-dev mailing list [email protected] https://lists.linuxfoundation.org/mailman/listinfo/lightning-dev
